The financially motivated threat actors behind the Casbaneiro banking malware family have been observed using a User Account Control (UAC) bypass technique to gain full administrative privileges on a machine, indicating that the threat actor’s tactics to avoid detection and execute malicious code on compromised assets are evolving.
“They are still heavily focused on Latin American financial institutions, but the changes in their techniques represent a significant risk to multi-regional financial organisations as well,” Sygnia warned in a statement obtained by The Hacker News.
Casbaneiro is most known for its banking malware, which initially appeared in mass email spam campaigns targeting the Latin American financial industry in 2018 read more Casbaneiro Banking Malware Goes Under the Radar with UAC Bypass Technique.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.